9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
John Heasman from Next Generation Security Software discovered a heap
overflow in the handling of Windows Metafiles in OpenOffice.org, the
free office suite, which could lead to a denial of service and
potentially execution of arbitrary code.
For the stable distribution (sarge) this problem has been fixed in
version 1.1.3-9sarge4.
For the unstable distribution (sid) this problem has been fixed in
version 2.0.4-1.
We recommend that you upgrade your openoffice.org package.
CPE | Name | Operator | Version |
---|---|---|---|
openoffice.org | eq | 1.1.3-9sarge1 | |
openoffice.org | eq | 1.1.3-9 | |
openoffice.org | eq | 1.1.3-9sarge2 | |
openoffice.org | eq | 1.1.3-9sarge3 |